From 49c5fd1b00b00c5d0922fc1ee0fd416c92ba8a5f Mon Sep 17 00:00:00 2001
From: Gian Miguel Del Mundo <gianmiguel.delmundo@thetradedesk.com>
Date: Wed, 24 Apr 2024 17:50:51 +0800
Subject: [PATCH] Added vuln scanning

---
 .github/workflows/build-and-test.yaml | 9 +++++++++
 .gitignore                            | 1 -
 .trivyignore                          | 5 +++++
 3 files changed, 14 insertions(+), 1 deletion(-)
 create mode 100644 .github/workflows/build-and-test.yaml
 create mode 100644 .trivyignore

diff --git a/.github/workflows/build-and-test.yaml b/.github/workflows/build-and-test.yaml
new file mode 100644
index 0000000..6e5d811
--- /dev/null
+++ b/.github/workflows/build-and-test.yaml
@@ -0,0 +1,9 @@
+name: Build and Test
+on: [pull_request, push, workflow_dispatch]
+
+jobs:
+  build:
+    uses: IABTechLab/uid2-shared-actions/.github/workflows/shared-build-and-test.yaml@v2
+    secrets: inherit
+    with:
+      vulnerability_scan_only: true
diff --git a/.gitignore b/.gitignore
index 7bf4ffe..c016c59 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,4 +4,3 @@ obj
 Properties
 *.idea/*
 *.user
-
diff --git a/.trivyignore b/.trivyignore
new file mode 100644
index 0000000..3aa85f5
--- /dev/null
+++ b/.trivyignore
@@ -0,0 +1,5 @@
+# List any vulnerability that are to be accepted
+# See https://aquasecurity.github.io/trivy/v0.35/docs/vulnerability/examples/filter/ 
+# for more details
+# e.g. 
+# CVE-2022-3996